| Skip Navigation Links | |
| Exit Print View | |
 | man pages section 2: System Calls Oracle Solaris 11 Information Library |
| Skip Navigation Links | |
| Exit Print View | |
| man pages section 2: System Calls Oracle Solaris 11 Information Library |
- set user and group IDs
#include <sys/types.h>#include <unistd.h>intsetuid(uid_tuid);
intsetgid(gid_tgid);
intseteuid(uid_teuid);
intsetegid(gid_tegid);
Thesetuid() function sets the real user ID, effective user ID, andsaved user ID of the calling process. Thesetgid() function sets the realgroup ID, effective group ID, and saved group ID of the callingprocess. Thesetegid() andseteuid() functions set the effective group and userIDs respectively for the calling process. SeeIntro(2) for more information on real,effective, and saved user and group IDs.
At login time, the real user ID, effective user ID, and saveduser ID of the login process are set to the login IDof the user responsible for the creation of the process. The sameis true for the real, effective, and saved group IDs; they areset to the group ID of the user responsible for the creation ofthe process.
When a process calls one of theexec(2) family of functions toexecute a file (program), the user and/or group identifiers associated with theprocess can change. If the file executed is a set-user-ID file, the effectiveand saved user IDs of the process are set to the ownerof the file executed. If the file executed is a set-group-ID file,the effective and saved group IDs of the process are set tothe group of the file executed. If the file executed is nota set-user-ID or set-group-ID file, the effective user ID, saved user ID, effectivegroup ID, and saved group ID are not changed.
If the {PRIV_PROC_SETID} privilege is asserted in the effective set of theprocess callingsetuid(), the real, effective, and saved user IDs are setto theuid argument. If theuid argument is 0 andnone of the saved, effective or real UID is 0, additional restrictions apply.Seeprivileges(5).
If the {PRIV_PROC_SETID} privilege is not asserted in the effective set, butuid is either the real user ID or the saved user IDof the calling process, the effective user ID is set touid.
If the {PRIV_PROC_SETID} privilege is asserted in the effective set of theprocess callingsetgid(), the real, effective, and saved group IDs are setto thegid argument.
If the {PRIV_PROC_SETID} privilege is not asserted in the effective set, butgid is either the real group ID or the saved group IDof the calling process, the effective group ID is set togid.
Upon successful completion,0 is returned. Otherwise,-1 is returned anderrnois set to indicate the error.
Thesetuid() andsetgid() functions will fail if:
The value ofuid orgid is out of range.
Forsetuid() andseteuid(), the {PRIV_PROC_SETID} privilege is not asserted in the effective set of the calling process and theuid argument does not match either the real or saved user IDs, or an attempt is made to change to UID 0 and none of the existing UIDs is 0, in which case additional privileges are required.
Forsetgid() andsetegid(), the {PRIV_PROC_SETID} privilege is not asserted in the effective set and thegid argument does not match either the real or saved group IDs.
Seeattributes(5) for descriptions of the following attributes:
|
Intro(2),exec(2),getgroups(2),getuid(2),stat.h(3HEAD),attributes(5),privileges(5),standards(5)
Copyright © 2011, Oracle and/or its affiliates. All rights reserved.Legal Notices |   |